Lucene search
K

123 matches found

OSV
OSV
added 2026/06/03 2:52 p.m.6 views

ROOT-APP-PYPI-CVE-2025-27516 CVE-2025-27516 in rootio-Jinja2 - Patched by Root

Root has patched CVE-2025-27516 in the rootio-Jinja2 package for Root:PyPI. Multiple fixed versions available...

8.8CVSS7.7AI score0.00465EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2026/04/01 10:3 a.m.6 views

Security Bulletin: IBM Cloud Pak for Data System (CPDS 1.0) is affected by arbitrary code execution due to Jinja2

Summary Jinja2 is used by IBM Cloud Pak for Data System 1.0 as a template engine for generating dynamic content. CVE-2025-27516 affects Jinja2's sandboxed environment where an oversight in how the |attr filter interacts with the sandbox allows an attacker who controls template content to execute...

8.8CVSS6.2AI score0.00465EPSS
Exploits0Affected Software1
SUSE Linux
SUSE Linux
added 2026/03/25 9:38 a.m.4 views

Security update for python-Jinja2

This update for python-Jinja2 fixes the following issues: CVE-2025-27516: Fixed sandbox breakout through attr filter selecting format method bsc1238879 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

6.5CVSS5.8AI score0.00465EPSS
Exploits0References4
CBLMariner
CBLMariner
added 2026/02/09 11:37 p.m.4 views

CVE-2025-27516 affecting package nodejs24 for versions less than 24.13.0-1

CVE-2025-27516 affecting package nodejs24 for versions less than 24.13.0-1. A patched version of the package is available...

8.8CVSS7.9AI score0.00465EPSS
Exploits0
OpenVAS
OpenVAS
added 2026/02/02 12:0 a.m.5 views

Huawei EulerOS: Security Advisory for python-jinja2 (EulerOS-SA-2026-1142)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.9AI score0.00465EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2026/02/02 12:0 a.m.4 views

Huawei EulerOS: Security Advisory for python-jinja2 (EulerOS-SA-2026-1193)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.9AI score0.00465EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/31 12:0 a.m.5 views

EulerOS Virtualization 2.10.0 : python-jinja2 (EulerOS-SA-2026-1193)

According to the versions of the python-jinja2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Jinja is an extensible templating engine. Prior to 3.1.6, an oversight in how the Jinja sandboxed environment interacts with...

8.8CVSS6.1AI score0.00465EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.3 views

MiracleLinux 8 : python-jinja2-2.10.1-7.el8_10 (AXSA:2025-9821:03)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2025-9821:03 advisory. jinja2: Jinja sandbox breakout through attr filter selecting format method CVE-2025-27516 Tenable has extracted the preceding description block directly from...

8.8CVSS7.5AI score0.00465EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.8 views

MiracleLinux 9 : fence-agents-4.10.0-76.el9_5.6 (AXSA:2025-9811:03)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-9811:03 advisory. jinja2: Jinja sandbox breakout through attr filter selecting format method CVE-2025-27516 Tenable has extracted the preceding description block directly from...

8.8CVSS7.5AI score0.00465EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2025/12/17 2:25 p.m.9 views

Security Bulletin: Vulnerability in Jinja2 affects IBM Cloud Pak for Data System 2.0 (CPDS 2.0) [CVE-2025-27516]

Summary The Jinja2 package is used by IBM Cloud Pak for Data System 2.0 . IBM Cloud Pak for Data System 2.0 has addressed the applicable CVEs CVE-2025-27516 Vulnerability Details CVEID:CVE-2025-27516 DESCRIPTION: Jinja is an extensible templating engine. Prior to 3.1.6, an oversight in how the...

8.8CVSS7.8AI score0.00465EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/12/11 12:0 a.m.7 views

SUSE SLES15 Security Update : python-Jinja2 (SUSE-SU-2025:1004-2)

The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2025:1004-2 advisory. - CVE-2025-27516: Fixed sandbox breakout through attr filter selecting format method bsc1238879 Tenable has extracted the preceding...

8.8CVSS7.5AI score0.00465EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2025/12/11 12:0 a.m.3 views

SUSE: Security Advisory (SUSE-SU-2025:1004-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.8AI score0.00465EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2025/10/22 10:36 a.m.5 views

Security Bulletin: IBM watsonx Orchestrate Developer Edition affected by vulnerability in jinja2-3.1.5-py3-none-any.whl

Summary Security Bulletin: IBM watsonx Orchestrate Developer Edition affected by vulnerability in jinja2-3.1.5-py3-none-any.whl Vulnerability Details CVEID:CVE-2025-27516 DESCRIPTION: Jinja is an extensible templating engine. Prior to 3.1.6, an oversight in how the Jinja sandboxed environment...

8.8CVSS7.8AI score0.00465EPSS
Exploits0Affected Software1
Rockylinux
Rockylinux
added 2025/10/03 7:56 p.m.5 views

python-jinja2 security update

An update is available for python-jinja2. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Python is an interpreted, interactive, object-oriented programming...

8.8CVSS7AI score0.00465EPSS
Exploits0
OSV
OSV
added 2025/10/03 7:56 p.m.4 views

RLSA-2025:7476 Important: python-jinja2 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

7.3CVSS7.7AI score0.00465EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2025/09/20 11:26 a.m.4 views

Security Bulletin: IBM watsonx Orchestrate Cartridge affected by vulnerability in jinja2-3.1.5-py3-none-any.whl

Summary IBM watsonx Orchestrate Cartridge contains a vulnerable version of jinja2-3.1.5-py3-none-any.whl Vulnerability Details CVEID:CVE-2025-27516 DESCRIPTION: Jinja is an extensible templating engine. Prior to 3.1.6, an oversight in how the Jinja sandboxed environment interacts with the |attr...

8.8CVSS7.1AI score0.00465EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2025/09/17 12:0 a.m.3 views

Huawei EulerOS: Security Advisory for python-jinja2 (EulerOS-SA-2025-2182)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.1AI score0.00465EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/09/16 12:0 a.m.5 views

EulerOS Virtualization 2.13.1 : python-jinja2 (EulerOS-SA-2025-2182)

According to the versions of the python-jinja2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Jinja is an extensible templating engine. Prior to 3.1.6, an oversight in how the Jinja sandboxed environment interacts with...

8.8CVSS7.8AI score0.00465EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/09/16 12:0 a.m.7 views

EulerOS Virtualization 2.13.0 : python-jinja2 (EulerOS-SA-2025-2183)

According to the versions of the python-jinja2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Jinja is an extensible templating engine. Prior to 3.1.6, an oversight in how the Jinja sandboxed environment interacts with...

8.8CVSS7.8AI score0.00465EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/09/03 12:0 a.m.3 views

Huawei EulerOS: Security Advisory for python-jinja2 (EulerOS-SA-2025-1899)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.1AI score0.00465EPSS
Exploits0References2
Rows per page
Query Builder